AnsweredAssumed Answered

testssl and ssllabs discrepancy

Question asked by Rob D on Jun 7, 2017
Latest reply on Jun 8, 2017 by Rob D

I'm seeing a testssl (latest version) and ssllabs discrepancy, and not sure which one is correct.

 

See the output below:

 

testssl:

 POODLE, SSL (CVE-2014-3566)               VULNERABLE (NOT ok), uses SSLv3+CBC (check TLS_FALLBACK_SCSV mitigation below)
 TLS_FALLBACK_SCSV (RFC 7507),             Downgrade attack prevention NOT supported
ssllabs:
POODLE (SSLv3)No, mitigated (more info  SSL 3: 0x5
POODLE (TLS)No (more info)

Outcomes